0d5a559566c9fed539b57b3349d254ea_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0d5a559566c9fed539b57b3349d254ea_JaffaCakes118
Size

122KB
MD5

0d5a559566c9fed539b57b3349d254ea
SHA1

7225ce814b546735f73836dc52f4f2c5d838fef6
SHA256

6846c7f221056bceb29a68669f44879aa880e991b694335b88c369a3d410d7ec
SHA512

f1b070f3b8e3cec2cbf8c06955beb0842097a596c7514e95570bbe6c47ba0063deb0c87562831c0ae58af50d7da5cdffae13f146cbb6838411edd263f3461e66
SSDEEP

3072:7OhaRdftdYl3Gy/eADd2C6zKjV3cFiqKrrkumQoicnO:7O0RphwDd2KZkiqWkGo7nO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d5a559566c9fed539b57b3349d254ea_JaffaCakes118

Files

0d5a559566c9fed539b57b3349d254ea_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fce5b610d49e9436dab02056e436f86e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetProcessHeap
GetLocaleInfoW
WideCharToMultiByte
ExitProcess
FindFirstFileW
GetCurrentProcessId
TerminateProcess
TlsAlloc
GetLongPathNameW
GetDateFormatW
CreateMutexW
ReadFile
VirtualAlloc
GlobalLock
HeapCreate
FreeEnvironmentStringsW
GetCommandLineA
FormatMessageW
TlsGetValue
LoadLibraryW
GetCurrentDirectoryW
GetFileType
SetFilePointer
IsValidCodePage
LeaveCriticalSection
GetExitCodeProcess
SetEvent
CreateFileA
SetHandleCount
HeapFree
CloseHandle
LocalLock
GetSystemInfo
GlobalSize
lstrcpynW
GetProcAddress
LoadLibraryA
GetCurrentThreadId
GetTickCount
HeapSize
LCMapStringW
LCMapStringA
VirtualProtect
VirtualQuery
InterlockedExchange
RtlUnwind
IsBadWritePtr
HeapReAlloc
GetOEMCP
GetStringTypeW
GetStringTypeA
VirtualFree
HeapDestroy
GetEnvironmentStringsW
GetLastError
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
WriteFile
GetVersionExA
GetStartupInfoA
GetModuleHandleA
GetCurrentDirectoryA
LoadResource
lstrcmpW
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
InterlockedDecrement
FreeLibrary
HeapAlloc
GlobalUnlock
GetTimeFormatW
GetACP
LocalFree
OpenEventW
CreateFileW
TerminateThread
CreateThread
GetCPInfo
FindNextFileW
WriteConsoleA
GlobalAlloc
GetLocaleInfoA
FileTimeToSystemTime
GetUserDefaultLCID
QueryPerformanceCounter
GetVersionExW
GetModuleFileNameW
IsValidLocale
TlsSetValue
GetCommandLineW
SetStdHandle
MultiByteToWideChar
GetDriveTypeW
GetModuleHandleW
CopyFileW
CompareStringW
CreateEventW
InterlockedCompareExchange
FindClose
GetStdHandle

user32

GetMonitorInfoW
CreateDialogParamW
PtInRect
ScreenToClient
PostMessageW
MessageBoxW
CloseClipboard
DeleteMenu
CreateCursor
GetWindowLongW
EndDialog
RegisterClassW
SetMenuItemInfoW
RegisterWindowMessageW
DragDetect
FindWindowW
SetWindowPos
OpenClipboard
IsIconic
MonitorFromWindow
CreatePopupMenu
SystemParametersInfoW
WindowFromPoint
EnableWindow
CallNextHookEx
GetSysColor
GetActiveWindow
SetParent
LoadMenuW
EndPaint
DrawFocusRect
LoadStringW
PeekMessageW
SetDlgItemInt
GetKeyboardState
TranslateMessage
SetScrollPos
GetClipboardData
DrawTextExW
GetMenuItemCount
DrawMenuBar
IsClipboardFormatAvailable
GetMenuState
GetDC
SetForegroundWindow
SendMessageW
ShowWindow
GetDlgItemInt
BeginPaint
ReleaseDC
SendDlgItemMessageW

gdi32

GetStockObject
CreateHatchBrush
SelectObject
DPtoLP
CreateBitmap
GetDeviceCaps
DeleteDC
DeleteObject
SetBkMode
GetTextExtentPointW
CreateCompatibleDC
AddFontResourceW
MoveToEx
StartDocW
SetBkColor
SaveDC
Rectangle
LineTo
PatBlt
EndDoc
GetPixel
EnumFontFamiliesExW
SetBrushOrgEx
GetTextMetricsW
RemoveFontResourceW
SetWindowOrgEx
GetTextExtentPoint32W
SetROP2
EndPage
ExtTextOutW
CreateCompatibleBitmap
SetTextAlign
GetROP2
StartPage
CreateSolidBrush
BitBlt
OffsetWindowOrgEx

comdlg32

PrintDlgW
ChooseColorW
GetFileTitleW
ReplaceTextA
PrintDlgA
GetSaveFileNameA
FindTextA
GetSaveFileNameW
GetOpenFileNameA
PageSetupDlgA
ReplaceTextW
PageSetupDlgW
FindTextW
GetOpenFileNameW
GetFileTitleA
ChooseColorA
ChooseFontA
ChooseFontW

ole32

WriteClassStm

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 82KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fce5b610d49e9436dab02056e436f86e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

ole32

Sections

.text Size: 25KB - Virtual size: 25KB

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 82KB - Virtual size: 126KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 25KB - Virtual size: 25KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 82KB - Virtual size: 126KB

.rsrc
Size: 4KB - Virtual size: 4KB